CVE-2007-2747
CVE-2007-2747 : A directory traversal vulnerability in rdifWeb’s rdw_helpers.py (rdiffWeb) before version 0.3.5.1 allows remote attackers to read arbitrary files by supplying a .. (dot dot) path in the /browse URI. The underlying flaw is a lack of proper path sanitization, enabling traversal beyo...